My teammates and I are arguing on which library to use for our local and social authentication in our express app between OAuth2 and Passport. I went for Passport cause I personally like it, and it seems easier to implement with good docs, but some of my teammates think it's less secure than OAuth2. So any advice please would be appreciated. Thanks 🙏🏻
5 upvotes·316.2K views
Replies (1)
Hey, It really depends on your usecase if you need OAuth2. If you are just looking to authenticate users, registration/login and all the "normal" stuff, then you probably dont need OAuth2!
We have a (in my opinion) pretty helpful document going over this: https://www.ory.sh/hydra/docs/next/concepts/before-oauth2/
3 upvotes·1 comment·1.5K views